i made a proof of concept just to see if i could. (i can)
@codl So they key is to call window.parent.postMessage, which allows you to send the message from the iframe to the document load embeds the iframe?
I'm still trying to get my head around why this isn't a security problem.
Chitter is a social network fostering a friendly, inclusive, and incredibly soft community.